Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: XBVuNBKAIjz+yAk8Axwmq+fmu2Fb0oOV2/heaQt+LMc=
Subject key identifier: 6C:3E:A8:A8:35:AA:D9:B1:74:4D:FA:F7:AA:42:C2:60:E0:6C:11:9F
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 0199FB7C9EE586DF944C10C6BF78FFB8B426
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 16E3
Signing time: Sun 19 Oct 2025 08:01:12 +0000
Manifest this update: Sun 19 Oct 2025 08:01:12 +0000
Manifest next update: Mon 20 Oct 2025 08:01:12 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: QU5EGrJ1phNDJwZk7w/ssnc+lrtf0GulatM+OHxgrF4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 08:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:9e:e5:86:df:94:4c:10:c6:bf:78:ff:b8:b4:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: Oct 19 08:01:12 2025 GMT
Not After : Oct 20 08:01:12 2025 GMT
Subject: CN=6c3ea8a835aad9b1744dfaf7aa42c260e06c119f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:83:fc:d3:68:99:94:ed:8c:f4:b6:af:76:ad:
6b:74:ed:78:1f:4d:cc:ca:cd:82:b0:cf:aa:4c:e6:
a8:88:37:fc:cc:c4:16:cc:01:80:6d:a6:98:ea:94:
6a:83:41:7d:41:64:81:61:6c:dd:d3:b5:68:2f:fc:
18:3f:57:95:63:9e:94:d0:3c:0e:61:c1:04:58:3f:
11:d8:c5:fb:1a:92:a6:4e:9c:8b:68:88:6d:d8:63:
81:75:ff:0a:48:e0:77:0f:9d:bd:b3:ae:48:ef:f0:
c4:58:41:57:4c:7b:e0:d2:9b:56:35:13:ae:1e:a5:
1b:66:f4:1c:c8:ed:4d:ca:07:f8:2f:49:14:71:cb:
fb:05:f2:7f:a5:a1:21:37:30:e7:0d:e4:eb:b9:69:
6d:de:97:a7:7c:f1:60:4a:15:61:ab:13:73:ee:39:
b4:e9:cc:47:5a:f4:8e:66:d6:d6:d0:b5:e7:25:92:
fc:84:3e:b0:49:ea:00:c2:26:6f:59:af:22:87:1a:
00:ed:14:95:44:f6:7b:a3:09:35:c1:74:f3:51:ec:
5c:f0:b4:fc:bb:ff:c7:7a:a3:e0:6c:c4:23:89:f4:
8a:c4:f8:cf:ae:ed:6d:fa:9d:ea:42:0b:a2:da:01:
54:55:1e:ea:c8:17:a9:34:97:bf:4e:74:e2:91:dd:
7b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:3E:A8:A8:35:AA:D9:B1:74:4D:FA:F7:AA:42:C2:60:E0:6C:11:9F
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:59:08:53:2b:42:26:85:43:ea:ab:52:21:60:a3:35:bf:24:
d9:95:b1:21:47:ea:56:ac:5d:15:46:4a:b2:66:38:f5:9d:c2:
25:1f:5b:00:2c:f9:2e:e4:1b:0c:d5:ef:1c:89:cf:04:84:bc:
2f:ef:2e:0a:46:7b:bc:dc:cf:08:96:c7:1d:2d:73:0c:87:2a:
63:89:a5:db:a0:5d:72:db:a2:bd:00:3e:08:a9:54:f1:b9:9b:
cf:9d:bb:d1:03:9c:b9:4b:a3:2b:61:e4:32:f6:14:5a:a8:a3:
c9:77:89:e5:85:10:95:f8:3b:dd:d1:a8:4e:1b:04:c9:12:05:
ba:e7:e1:09:ab:76:c5:42:d2:10:5d:01:06:e6:1b:38:f8:39:
b0:82:af:83:6f:7e:a3:79:ac:8e:f2:20:28:e6:82:01:68:d7:
3e:67:50:c8:08:52:86:25:5a:67:c1:31:01:61:8c:ab:e2:38:
01:be:e9:df:90:82:de:3d:d2:c5:5b:9d:3e:ee:de:8a:f2:65:
a3:18:60:b2:ef:7f:52:c8:6f:a3:66:81:ed:b6:58:dc:fd:be:
74:37:aa:e2:2d:ff:4d:ea:7c:9a:83:b6:61:7c:19:e0:7c:49:
44:e0:53:93:6e:48:24:09:ca:49:a2:2e:ea:1f:22:80:33:10:
27:e8:aa:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:05:44 2025 by rpki-client